CVE-2017-16201 - AskarLabs CVE Database

CVE-2017-16201

Vendor Hackerone

Product zjjserver node module

Weakness CWE-22 · Path traversal

Published June 7, 2018

Last update September 16, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

zjjserver is a static file server. zjjserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

Key dates

02Disclosure timeline

June 7, 2018 CVE published

September 16, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2017-16201 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/22.html

Related vulnerabilities

04Related CVE

CVE-2025-68907 WordPress Hostme v2 theme <= 7.0 - Arbitrary File Deletion vulnerability CVE-2026-33292 AVideo has Authorization Bypass via Path Traversal in HLS Endpoint Allows Streaming Private/Paid Videos CVE-2025-32431 Traefik has a possible vulnerability with the path matchers CVE-2025-41757 Arbitrary Write with ubr-restore CVE-2024-50336 matrix-js-sdk has insufficient MXC URI validation which allows client-side path traversal